GitHub - sslHello/O-Saft: O-Saft - OWASP SSL audit for testers

sslHello / O-Saft Public

forked from OWASP/O-Saft

Notifications You must be signed in to change notification settings
Fork 0
Star 0

O-Saft - OWASP SSL audit for testers

GPL-2.0 license

0 stars 97 forks Branches Tags Activity

Star

Notifications

Branches Tags

Name		Name	Last commit message	Last commit date
Latest commit History 321 Commits
Net		Net
.o-saft.pl		.o-saft.pl
CHANGES		CHANGES
INSTALL-devel.sh		INSTALL-devel.sh
LICENSE.md		LICENSE.md
README		README
checkAllCiphers.pl		checkAllCiphers.pl
contrib		contrib
o-saft-README		o-saft-README
o-saft-dbx.pm		o-saft-dbx.pm
o-saft-usr.pm		o-saft-usr.pm
o-saft.pl		o-saft.pl
o-saft.tgz		o-saft.tgz
openssl_h-to-perl_hash		openssl_h-to-perl_hash

Repository files navigation

 /~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-.
                                                          Version: 14.1.4    )
	O-Saft  - OWASP SSL audit for testers                               (
                  OWASP SSL advanced forensic tool                           )
 /~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-/
(
 )  DESCRIPTION
(       This tools lists  information about remote target's  SSL  certificate
 )      and tests the remote target according given list of ciphers.
(
 )  WHY?
(       Why a new tool for checking SSL  when there already exist a dozens or
 )      more in 2012? Some (but not all) reasons are:
(       * lack of tests of unusual ciphers
 )      * different results returned for the same check on same target
(       * missing functionality (checks) according modern SSL/TLS
 )      * lack of tests of unusual (SSL, certificate) configurations
(       * (mainly) missing feasability to add own tests
 )
(       For more details, please use
 )        o-saft.pl --help
(       or read the source ;-)
 )
(
 )  TARGET AUDIENCE
(       * penetration testers
 )      * administrators
(
 )  INSTALLATION
(       o-saft.pl requires following Perl modules:
 )          Net::SSLeay          (prefered >= 1.51)
(           IO::Socket::SSL      (prefered >= 1.37)
 )          IO::Socket::INET     (prefered >= 1.31)
(
 )      Module Net::SSLinfo is part of O-Saft and should be installed in ./Net .
(       All dependencies for these modules must also be installed.
 )
(       Following files are optional:
 )          .o-saft.pl           (private user configuration)
(           o-saft-dbx.pm        (for debugging, tracing)
 )      .o-saft.pl is delivered as .o-saft.pl.sample to avoid destroying user
(       configurations. It needs to be renamed before used.
 )
(       o-saft.pl  reads  o-saft-README  if possible and exits.
 )      o-saft-README  must be renamed or removed to get  o-saft.pl  working.
(
 )  QUICK START
(       o-saft.pl --help
 )      o-saft.pl +check your.tld
(       o-saft.pl +info  your.tld
 )      o-saft.pl +quick your.tld
(       more o-saft.pl
 )
(       Project home is https://www.owasp.org/index.php/Projects/O-Saft
 )      Project roadmap https://www.owasp.org/index.php/Projects/O-Saft/Roadmap
(
 )  Get a Copy
(       git clone git@github.com:OWASP/O-Saft.git
 )      git clone https://github.com/OWASP/O-Saft.git
(       wget https://github.com/OWASP/O-Saft/raw/master/o-saft.tgz
 )
(
 )  VERSION
(       The version of the tarball  o-saft.tgz  represents the version listed
 )      on top herein. All other files in the repository may be ahead of this
(       (tarball) version.
 \_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-~-_-/